what you don't know can hurt you
Showing 1 - 25 of 33 RSS Feed

Files Date: 2008-11-08

miranda.tar.gz
Posted Nov 8, 2008
Authored by Craig Heffner | Site sourcesec.com

Miranda is a Python-based Universal Plug-N-Play client application designed to discover, query and interact with UPNP devices, particularly Internet Gateway Devices (aka, routers). It can be used to audit UPNP-enabled devices on a network for possible vulnerabilities.

tags | tool, scanner, vulnerability, python
systems | unix
MD5 | 7a918e216859c92bc47dec41ced50092
vmware-guestescalate.txt
Posted Nov 8, 2008
Authored by Derek Soeder

By exploiting either of the VMware flaws described in this document, user-mode code executing in a virtual machine may gain kernel privileges within the virtual machine, dependent upon the guest operating system. The flaws have been proven exploitable on x64 versions of Windows, and they have produced potentially exploitable crashes on x64 versions of *BSD. The Linux kernel does not allow exploitation of these flaws on x64 versions of Linux.

tags | advisory, kernel
systems | linux, windows, bsd
advisories | CVE-2008-4279, CVE-2008-4915, CVE-2008-3890
MD5 | 27b8c7a5be29107cda604fa31f5e5ec5
AKADV2008-001-v1.0.txt
Posted Nov 8, 2008
Authored by Andreas Kurtz | Site andreas-kurtz.de

The jabber server Openfire versions 3.6.0a and below contain several serious vulnerabilities. Depending on the particular runtime environment these issues can potentially even be used by an attacker to execute code on operating system level. Full exploitation details provided.

tags | exploit, vulnerability
MD5 | 61aa53a9f122dce123100b68c4bee9f7
v3chat-sql.txt
Posted Nov 8, 2008
Authored by d3b4g

V3 Chat - Profiles/Dating Script version 3.0.2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | cbfee09f7ee3f7aae72b6e1738384923
file_sharing_security.pdf
Posted Nov 8, 2008
Authored by Francis Corella | Site pomcor.com

Whitepaper entitled Protecting A Web Application Against Attacks Through HTML Shared Files.

tags | paper, web
MD5 | c943799ae1827665085d38b245e1d2a3
hzine-01.pdf
Posted Nov 8, 2008
Authored by hzine | Site hackerss.com

H-Zine Volume #1 - Discussing IpTables, C++, SQL injection, and more. Written in Spanish.

tags | sql injection, magazine
MD5 | b6520728d4538505eaf0c188195547d6
ake-escalate.txt
Posted Nov 8, 2008
Authored by Alex from NT Internals | Site ntinternals.org

Anti-Keylogger Elite version 3.3.0 privilege escalation exploit that makes use of AKEProtect.sys.

tags | exploit
MD5 | a7db38809d17853c3d6f54a1179215e8
domainsellerpro-sql.txt
Posted Nov 8, 2008
Authored by TR-ShaRk

Domain Seller Pro version 1.5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e565b90e048c74bc40243eb547c3272b
speedstream-bypass.txt
Posted Nov 8, 2008
Authored by hkm

The SpeedStream 5200 suffers from an authentication bypass vulnerability via Host header modification.

tags | exploit, bypass
MD5 | 83c52b1e5bdb0e53192e0e657725f6c5
Mandriva Linux Security Advisory 2008-224
Posted Nov 8, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel.

tags | advisory, kernel, vulnerability
systems | linux, mandriva
advisories | CVE-2008-3528, CVE-2008-3831, CVE-2008-4554
MD5 | 7c9d1004487d0f220793e5b80672de0e
Mandriva Linux Security Advisory 2008-226
Posted Nov 8, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Denial of service, spoofing, and bypass vulnerabilities exist in Ruby.

tags | advisory, denial of service, spoof, vulnerability, ruby
systems | linux, mandriva
advisories | CVE-2008-3443, CVE-2008-3655, CVE-2008-3656, CVE-2008-3657, CVE-2008-3790, CVE-2008-3905
MD5 | 88cb2dca42cfd96d3ce3f78498bb7482
easybookmarker4-sql.txt
Posted Nov 8, 2008
Authored by G4N0K

Myiosoft EasyBookMarker version 4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e2530d27ce2fa15418f3a0467cbc94f1
etopbiznumberlinks-sql.txt
Posted Nov 8, 2008
Authored by Hussin X | Site tryag.cc

E-topbiz Number Links 1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c97233a32a8aa7200409b7e1823eb8dd
vlcrt-overflow.txt
Posted Nov 8, 2008
Authored by SkD

VLC Media Player versions below 0.9.6 .RT stack buffer overflow exploit.Spawns calc.exe.

tags | exploit, overflow
MD5 | 9505a7f22a569bc0fbd51b201e05de6a
miniwebcalendar-disclosexss.txt
Posted Nov 8, 2008
Authored by ahmadbady

Mini Web Calendar version 1.2 suffers from file disclosure and cross site scripting vulnerabilities.

tags | exploit, web, vulnerability, xss, info disclosure
MD5 | 7bfcb6982e6931e098fa9415c4a93bf4
VMware Security Advisory 2008-0018
Posted Nov 8, 2008
Authored by VMware | Site vmware.com

VMware Security Advisory - VMware Hosted products and patches for ESX and ESXi resolve multiple security issues. A flaw in the CPU hardware emulation may allow for a privilege escalation on virtual machine guest operating systems. In addition a directory traversal issue is resolved.

tags | advisory
advisories | CVE-2008-4915, CVE-2008-4281
MD5 | 9767200e7774a23689467b983ca46137
joomlafeederator-rfi.txt
Posted Nov 8, 2008
Authored by NoGe

The Joomla Feederator component version 1.0.5 suffers from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
MD5 | 64735dc09ca6d7cdfdbdf61b07fcc48d
joomlarecly-rfi.txt
Posted Nov 8, 2008
Authored by NoGe

The Joomla Recly!Competitions component version 1.0.0 suffers from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
MD5 | ca1af1f9a07096832e60094294777622
joomlaclickheat101-rfi.txt
Posted Nov 8, 2008
Authored by NoGe

The Joomla Clickheat component version 1.0.1 suffers from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
MD5 | 285ed2333c45d302005a18134c158a1a
VNCcrack-2.1.tgz
Posted Nov 8, 2008
Authored by Jack Lloyd | Site randombit.net

VNCcrack is a simple, fast offline-mode VNC password cracker. It takes a set of challenge-response pairs of the type passed during a VNC authentication attempt, and attempts to recover the passwords using a dictionary file.

tags | cracker
MD5 | 1494e3c71d55829c61978f0a4102ca43
etopbizos1-sql.txt
Posted Nov 8, 2008
Authored by Stack | Site v4-team.com

E-topbiz Online Store 1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c1f135d99ae72afb83a2ad99aa4611b9
precarlister-sql.txt
Posted Nov 8, 2008
Authored by r45c4l | Site darkc0de.com

Pre Car Lister suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 4310ed2ffd58b5cbc4c3ecc028e0e1a0
Secunia Security Advisory 32607
Posted Nov 8, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for netpbm. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a vulnerable system.

tags | advisory
systems | linux, ubuntu
MD5 | 90168d7cd8e9e51207a60b675fffadac
Pardus Linux Security Advisory 2008.67
Posted Nov 8, 2008
Authored by Pardus Linux, Pardus

Pardus Linux Security Advisory 2008-67 - A remotely exploitable heap-based buffer overflow exists in libcaudio versions prior to 0.99.12-2-2.

tags | advisory, overflow
systems | linux
MD5 | f7fc3b93688550b2623694dbb2e42a56
Pardus Linux Security Advisory 2008.66
Posted Nov 8, 2008
Authored by Pardus Linux, Pardus

Pardus Linux Security Advisory 2008-66 - An untrusted search path vulnerability in BPY_interface in Blender 2.46 allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to an erroneous setting of sys.path by the PySys_SetArgv function.Blender versions prior to 2.47-14-3 are affected.

tags | advisory, arbitrary, local, trojan, python
systems | linux
MD5 | cd581dc8862d658954b6cb46ade16189
Page 1 of 2
Back12Next

File Archive:

July 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    13 Files
  • 2
    Jul 2nd
    0 Files
  • 3
    Jul 3rd
    0 Files
  • 4
    Jul 4th
    0 Files
  • 5
    Jul 5th
    0 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    0 Files
  • 9
    Jul 9th
    0 Files
  • 10
    Jul 10th
    0 Files
  • 11
    Jul 11th
    0 Files
  • 12
    Jul 12th
    0 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close